CVE-2017-3135

NameCVE-2017-3135
DescriptionAssertion failure when using DNS64 and RPZ can lead to crash
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-843-1, DSA-3795-1
Debian Bugs855520

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
bind9 (PTS)wheezy1:9.8.4.dfsg.P1-6+nmu2+deb7u10vulnerable
wheezy (security)1:9.8.4.dfsg.P1-6+nmu2+deb7u15fixed
jessie1:9.9.5.dfsg-9+deb8u8vulnerable
jessie (security)1:9.9.5.dfsg-9+deb8u10fixed
stretch1:9.10.3.dfsg.P4-12fixed
sid1:9.10.3.dfsg.P4-12.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
bind9source(unstable)1:9.10.3.dfsg.P4-12855520
bind9sourcejessie1:9.9.5.dfsg-9+deb8u10DSA-3795-1
bind9sourcewheezy1:9.8.4.dfsg.P1-6+nmu2+deb7u15DLA-843-1

Notes

https://kb.isc.org/article/AA-01453
Patch for 9.9.9-P6: ftp://ftp.isc.org/isc/bind9/9.9.9-P6/patches/rt44434

Search for package or bug name: Reporting problems